iTnews
  • Home
  • News
  • Technology

Mozilla warns of new Firefox vulnerability

By Shaun Nichols
Jul 15 2009 3:17PM
Follow google news

Javascript flaw could allow for remote attacks.

Mozilla is warning users and administrators following the discovery of a new flaw in its Firefox 3.5 browser.

The company said that the flaw exists in the browser's JavaScript tool within a component called 'just in time' (JIT.)

If exploited, the flaw could allow an attacker to remotely execute code on a targeted system.

Mozilla further warned that a working exploit has been publically released, increasing the risk of attacks occurring in the wild.

To prevent attack, the company has posted instructions for temporarily disabling the JIT component through the browser's about:config menu. Doing so will slow JavaScript performance, however.

Users can also reduce the risk of attack by running the browser in Windows' Safe Mode.

The Firefox flaw is the latest in what has been a string of high-profile browser exploits in recent days.

Last week Microsoft warned of a flaw in a video ActiveX plug-in that was actively being targeted in Internet Explorer, and yesterday the company gave word of a second vulnerable IE component, this time an Office plug-in, that was being targeted by attackers.

Mozilla warns of new Firefox vulnerability

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
companycomponentfirefoxflawjavascripttargetedtechnology

Related Articles

  • Black Hat founder: SSL is broken Black Hat founder: SSL is broken
  • Adobe releases Flash 10.1 and patch bundle Adobe releases Flash 10.1 and patch bundle
  • Google posts Chrome security fixes Google posts Chrome security fixes
  • Report: Apple's iAds catches interest of antitrust regulators Report: Apple's iAds catches interest of antitrust regulators
Join our WhatsApp Channel

Partner Content

You meet the security standard. Shame no one can see it
Promoted Content You meet the security standard. Shame no one can see it
Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
Partner Content Thomas Peer Solutions unveils data cloud platform and executive leadership forum for 2026
From test case to control tower: How DXC and ServiceNow are governing enterprise AI at scale
Promoted Content From test case to control tower: How DXC and ServiceNow are governing enterprise AI at scale
Agile isn’t the problem: why projects still fail, and what’s missing
Partner Content Agile isn’t the problem: why projects still fail, and what’s missing

Sponsored Whitepapers

Are Australian organisations as cyber-ready as they think?
Are Australian organisations as cyber-ready as they think?
Are New Zealand organisations as cyber-ready as they think?
Are New Zealand organisations as cyber-ready as they think?
From visibility to execution: Fixing the SaaS management gap
From visibility to execution: Fixing the SaaS management gap
When cyber risk has no clear owner: A practical guide for senior Australian business leaders
When cyber risk has no clear owner: A practical guide for senior Australian business leaders
Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail

Events

  • iTnews State of Security Breakfast iTnews State of Security Breakfast
  • iTnews State of Data & AI Breakfast iTnews State of Data & AI Breakfast
  • Forrester's AI Forum Sydney Forrester's AI Forum Sydney
  • The 2026 iAwards The 2026 iAwards
  • Integrate 2026 Integrate 2026
Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Software AG squares up to SAP with IDS Scheer buy

Software AG squares up to SAP with IDS Scheer buy
Analysis: How secure is an optical-fibre network?

Analysis: How secure is an optical-fibre network?
Report: Apple's iAds catches interest of antitrust regulators

Report: Apple's iAds catches interest of antitrust regulators
Google adds search support for mobile application stores

Google adds search support for mobile application stores
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.